security: round 3 hardening (CSRF double-submit, TRX MITM, container hardening)

apps/api/src/services/wallet-ops.service.ts

@@ -1,6 +1,6 @@
 /**
- * Wallet operations across chains: balance, transactions, build unsigned send tx.
- * Non-custodial: server NEVER signs — клиент подписывает приватом.
+ * Wallet read-only operations across chains: balance + tx history.
+ * Server-side signing now lives in `wallet-signer.service.ts` (custodial).
  */
 import { ethers } from 'ethers';
 import { env } from '../config/env';
@@ -250,14 +250,16 @@ async function solTransactions(address: string, limit: number): Promise<TxItem[]
   }));
 }
 
-// ─────────────────────── BUILD SEND (UNSIGNED TX) ───────────────────────
+// ─────────────────────── HELPERS ───────────────────────
+// (buildSend + chain-specific builders deleted — server signs custodially via wallet-signer.service.ts)
 
+/* deleted-marker-begin
 export interface BuildSendParams {
   chain: ChainCode;
   from: string;
   to: string;
   amount: string;
-  token?: string; // 'USDT' и т.д.; для native перевода — undefined
+  token?: string;
 }
 
 export type UnsignedTx =
@@ -442,8 +444,7 @@ async function deriveAta(
   );
   return pda;
 }
-
-// ─────────────────────── HELPERS ───────────────────────
+deleted-marker-end */
 
 const BASE58_ALPHABET = '123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz';